612 lines
16 KiB
JavaScript
612 lines
16 KiB
JavaScript
import dedent from 'dedent';
|
||
import moment from 'moment-timezone';
|
||
import { Observable } from 'rx';
|
||
import debugFactory from 'debug';
|
||
|
||
import {
|
||
frontEndChallengeId,
|
||
dataVisChallengeId,
|
||
backEndChallengeId
|
||
} from '../utils/constantStrings.json';
|
||
|
||
import certTypes from '../utils/certTypes.json';
|
||
|
||
import { ifNoUser401, ifNoUserRedirectTo } from '../utils/middleware';
|
||
import { observeQuery } from '../utils/rx';
|
||
import {
|
||
prepUniqueDays,
|
||
calcCurrentStreak,
|
||
calcLongestStreak
|
||
} from '../utils/user-stats';
|
||
|
||
import { flashIfNotVerified } from '../utils/middleware';
|
||
|
||
const debug = debugFactory('fcc:boot:user');
|
||
const sendNonUserToMap = ifNoUserRedirectTo('/map');
|
||
const certIds = {
|
||
[certTypes.frontEnd]: frontEndChallengeId,
|
||
[certTypes.dataVis]: dataVisChallengeId,
|
||
[certTypes.backEnd]: backEndChallengeId
|
||
};
|
||
|
||
const certViews = {
|
||
[certTypes.frontEnd]: 'certificate/front-end.jade',
|
||
[certTypes.dataVis]: 'certificate/data-vis.jade',
|
||
[certTypes.backEnd]: 'certificate/back-end.jade',
|
||
[certTypes.fullStack]: 'certificate/full-stack.jade'
|
||
};
|
||
|
||
const certText = {
|
||
[certTypes.frontEnd]: 'Front End certified',
|
||
[certTypes.dataVis]: 'Data Vis Certified',
|
||
[certTypes.backEnd]: 'Back End Certified',
|
||
[certTypes.fullStack]: 'Full Stack Certified'
|
||
};
|
||
|
||
const dateFormat = 'MMM DD, YYYY';
|
||
|
||
function replaceScriptTags(value) {
|
||
return value
|
||
.replace(/<script>/gi, 'fccss')
|
||
.replace(/<\/script>/gi, 'fcces');
|
||
}
|
||
|
||
function replaceFormAction(value) {
|
||
return value.replace(/<form[^>]*>/, function(val) {
|
||
return val.replace(/action(\s*?)=/, 'fccfaa$1=');
|
||
});
|
||
}
|
||
|
||
function encodeFcc(value = '') {
|
||
return replaceScriptTags(replaceFormAction(value));
|
||
}
|
||
|
||
function isAlgorithm(challenge) {
|
||
// test if name starts with hike/waypoint/basejump/zipline
|
||
// fix for bug that saved different challenges with incorrect
|
||
// challenge types
|
||
return !(/^(waypoint|hike|zipline|basejump)/i).test(challenge.name) &&
|
||
+challenge.challengeType === 5;
|
||
}
|
||
|
||
function isProject(challenge) {
|
||
return +challenge.challengeType === 3 ||
|
||
+challenge.challengeType === 4;
|
||
}
|
||
|
||
function getChallengeGroup(challenge) {
|
||
if (isProject(challenge)) {
|
||
return 'projects';
|
||
} else if (isAlgorithm(challenge)) {
|
||
return 'algorithms';
|
||
}
|
||
return 'challenges';
|
||
}
|
||
|
||
// buildDisplayChallenges(challengeMap: Object, tz: String) => Observable[{
|
||
// algorithms: Array,
|
||
// projects: Array,
|
||
// challenges: Array
|
||
// }]
|
||
function buildDisplayChallenges(challengeMap = {}, timezone) {
|
||
return Observable.from(Object.keys(challengeMap))
|
||
.map(challengeId => challengeMap[challengeId])
|
||
.map(challenge => {
|
||
let finalChallenge = { ...challenge };
|
||
if (challenge.completedDate) {
|
||
finalChallenge.completedDate = moment
|
||
.tz(challenge.completedDate, timezone)
|
||
.format(dateFormat);
|
||
}
|
||
|
||
if (challenge.lastUpdated) {
|
||
finalChallenge.lastUpdated = moment
|
||
.tz(challenge.lastUpdated, timezone)
|
||
.format(dateFormat);
|
||
}
|
||
|
||
return finalChallenge;
|
||
})
|
||
.filter(({ challengeType }) => challengeType !== 6)
|
||
.groupBy(getChallengeGroup)
|
||
.flatMap(group$ => {
|
||
return group$.toArray().map(challenges => ({
|
||
[getChallengeGroup(challenges[0])]: challenges
|
||
}));
|
||
})
|
||
.reduce((output, group) => ({ ...output, ...group}), {})
|
||
.map(groups => ({
|
||
algorithms: groups.algorithms || [],
|
||
projects: groups.projects || [],
|
||
challenges: groups.challenges || []
|
||
}));
|
||
}
|
||
|
||
module.exports = function(app) {
|
||
var router = app.loopback.Router();
|
||
var User = app.models.User;
|
||
function findUserByUsername$(username, fields) {
|
||
return observeQuery(
|
||
User,
|
||
'findOne',
|
||
{
|
||
where: { username },
|
||
fields
|
||
}
|
||
);
|
||
}
|
||
|
||
router.get('/login', function(req, res) {
|
||
res.redirect(301, '/signin');
|
||
});
|
||
router.get('/logout', function(req, res) {
|
||
res.redirect(301, '/signout');
|
||
});
|
||
router.get('/signin', getSignin);
|
||
router.get('/signout', signout);
|
||
router.get('/forgot', getForgot);
|
||
router.post('/forgot', postForgot);
|
||
router.get('/reset-password', getReset);
|
||
router.post('/reset-password', postReset);
|
||
router.get('/email-signup', getEmailSignup);
|
||
router.get('/email-signin', getEmailSignin);
|
||
router.get('/deprecated-signin', getDepSignin);
|
||
router.get('/update-email', getUpdateEmail);
|
||
router.get(
|
||
'/toggle-lockdown-mode',
|
||
sendNonUserToMap,
|
||
toggleLockdownMode
|
||
);
|
||
router.get(
|
||
'/toggle-announcement-email-mode',
|
||
sendNonUserToMap,
|
||
toggleReceivesAnnouncementEmails
|
||
);
|
||
router.get(
|
||
'/toggle-notification-email-mode',
|
||
sendNonUserToMap,
|
||
toggleReceivesNotificationEmails
|
||
);
|
||
router.get(
|
||
'/toggle-quincy-email-mode',
|
||
sendNonUserToMap,
|
||
toggleReceivesQuincyEmails
|
||
);
|
||
router.post(
|
||
'/account/delete',
|
||
ifNoUser401,
|
||
postDeleteAccount
|
||
);
|
||
router.get(
|
||
'/account',
|
||
sendNonUserToMap,
|
||
getAccount
|
||
);
|
||
router.get(
|
||
'/settings',
|
||
sendNonUserToMap,
|
||
flashIfNotVerified,
|
||
getSettings
|
||
);
|
||
// router.get('/vote1', vote1);
|
||
// router.get('/vote2', vote2);
|
||
|
||
// Ensure these are the last routes!
|
||
router.get(
|
||
'/:username/front-end-certification',
|
||
showCert.bind(null, certTypes.frontEnd)
|
||
);
|
||
|
||
router.get(
|
||
'/:username/data-visualization-certification',
|
||
showCert.bind(null, certTypes.dataVis)
|
||
);
|
||
|
||
router.get(
|
||
'/:username/back-end-certification',
|
||
showCert.bind(null, certTypes.backEnd)
|
||
);
|
||
|
||
router.get(
|
||
'/:username/full-stack-certification',
|
||
(req, res) => res.redirect(req.url.replace('full-stack', 'back-end'))
|
||
);
|
||
|
||
router.get('/:username', returnUser);
|
||
|
||
app.use(router);
|
||
|
||
function getSignin(req, res) {
|
||
if (req.user) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/signin', {
|
||
title: 'Sign in to Free Code Camp'
|
||
});
|
||
}
|
||
|
||
function signout(req, res) {
|
||
req.logout();
|
||
res.redirect('/');
|
||
}
|
||
|
||
|
||
function getDepSignin(req, res) {
|
||
if (req.user) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/deprecated-signin', {
|
||
title: 'Sign in to Free Code Camp using a Deprecated Login'
|
||
});
|
||
}
|
||
|
||
function getUpdateEmail(req, res) {
|
||
if (!req.user) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/update-email', {
|
||
title: 'Update your Email'
|
||
});
|
||
}
|
||
|
||
function getEmailSignin(req, res) {
|
||
if (req.user) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/email-signin', {
|
||
title: 'Sign in to Free Code Camp using your Email Address'
|
||
});
|
||
}
|
||
|
||
function getEmailSignup(req, res) {
|
||
if (req.user) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/email-signup', {
|
||
title: 'Sign up for Free Code Camp using your Email Address'
|
||
});
|
||
}
|
||
|
||
function getAccount(req, res) {
|
||
const { username } = req.user;
|
||
return res.redirect('/' + username);
|
||
}
|
||
|
||
function getSettings(req, res) {
|
||
res.render('account/settings', {
|
||
title: 'Settings'
|
||
});
|
||
}
|
||
|
||
function returnUser(req, res, next) {
|
||
const username = req.params.username.toLowerCase();
|
||
const { user, path } = req;
|
||
|
||
// timezone of signed-in account
|
||
// to show all date related components
|
||
// using signed-in account's timezone
|
||
// not of the profile she is viewing
|
||
const timezone = user && user.timezone ?
|
||
user.timezone :
|
||
'UTC';
|
||
|
||
const query = {
|
||
where: { username },
|
||
include: 'pledge'
|
||
};
|
||
|
||
return User.findOne$(query)
|
||
.filter(userPortfolio => {
|
||
if (!userPortfolio) {
|
||
req.flash('errors', {
|
||
msg: `We couldn't find a page for ${ path }`
|
||
});
|
||
res.redirect('/');
|
||
}
|
||
return !!userPortfolio;
|
||
})
|
||
.flatMap(userPortfolio => {
|
||
userPortfolio = userPortfolio.toJSON();
|
||
|
||
const timestamps = userPortfolio
|
||
.progressTimestamps
|
||
.map(objOrNum => {
|
||
return typeof objOrNum === 'number' ?
|
||
objOrNum :
|
||
objOrNum.timestamp;
|
||
});
|
||
|
||
const uniqueDays = prepUniqueDays(timestamps, timezone);
|
||
|
||
userPortfolio.currentStreak = calcCurrentStreak(uniqueDays, timezone);
|
||
userPortfolio.longestStreak = calcLongestStreak(uniqueDays, timezone);
|
||
|
||
const calender = userPortfolio
|
||
.progressTimestamps
|
||
.map((objOrNum) => {
|
||
return typeof objOrNum === 'number' ?
|
||
objOrNum :
|
||
objOrNum.timestamp;
|
||
})
|
||
.filter((timestamp) => {
|
||
return !!timestamp;
|
||
})
|
||
.reduce((data, timeStamp) => {
|
||
data[(timeStamp / 1000)] = 1;
|
||
return data;
|
||
}, {});
|
||
|
||
if (userPortfolio.isCheater && !user) {
|
||
req.flash('errors', {
|
||
msg: dedent`
|
||
Upon review, this account has been flagged for academic
|
||
dishonesty. If you’re the owner of this account contact
|
||
team@freecodecamp.com for details.
|
||
`
|
||
});
|
||
}
|
||
|
||
return buildDisplayChallenges(userPortfolio.challengeMap, timezone)
|
||
.map(displayChallenges => ({
|
||
...userPortfolio,
|
||
...displayChallenges,
|
||
title: 'Camper ' + userPortfolio.username + '\'s Code Portfolio',
|
||
calender,
|
||
github: userPortfolio.githubURL,
|
||
moment,
|
||
encodeFcc
|
||
}));
|
||
})
|
||
.doOnNext(data => {
|
||
return res.render('account/show', data);
|
||
})
|
||
.subscribe(
|
||
() => {},
|
||
next
|
||
);
|
||
}
|
||
|
||
function showCert(certType, req, res, next) {
|
||
const username = req.params.username.toLowerCase();
|
||
const certId = certIds[certType];
|
||
return findUserByUsername$(username, {
|
||
isGithubCool: true,
|
||
isCheater: true,
|
||
isLocked: true,
|
||
isFrontEndCert: true,
|
||
isDataVisCert: true,
|
||
isBackEndCert: true,
|
||
isFullStackCert: true,
|
||
isHonest: true,
|
||
username: true,
|
||
name: true,
|
||
challengeMap: true
|
||
})
|
||
.subscribe(
|
||
user => {
|
||
if (!user) {
|
||
req.flash('errors', {
|
||
msg: `We couldn't find a user with the username ${username}`
|
||
});
|
||
return res.redirect('/');
|
||
}
|
||
if (!user.isGithubCool) {
|
||
req.flash('errors', {
|
||
msg: dedent`
|
||
This user needs to link GitHub with their account
|
||
in order for others to be able to view their certificate.
|
||
`
|
||
});
|
||
return res.redirect('back');
|
||
}
|
||
|
||
if (user.isCheater) {
|
||
return res.redirect(`/${user.username}`);
|
||
}
|
||
|
||
if (user.isLocked) {
|
||
req.flash('errors', {
|
||
msg: dedent`
|
||
${username} has chosen to make their profile
|
||
private. They will need to make their profile public
|
||
in order for others to be able to view their certificate.
|
||
`
|
||
});
|
||
return res.redirect('back');
|
||
}
|
||
if (!user.isHonest) {
|
||
req.flash('errors', {
|
||
msg: dedent`
|
||
${username} has not yet agreed to our Academic Honesty Pledge.
|
||
`
|
||
});
|
||
return res.redirect('back');
|
||
}
|
||
|
||
if (user[certType]) {
|
||
|
||
const { challengeMap = {} } = user;
|
||
const { completedDate = new Date() } = challengeMap[certId] || {};
|
||
|
||
return res.render(
|
||
certViews[certType],
|
||
{
|
||
username: user.username,
|
||
date: moment(new Date(completedDate)).format('MMMM D, YYYY'),
|
||
name: user.name
|
||
}
|
||
);
|
||
}
|
||
req.flash('errors', {
|
||
msg: `Looks like user ${username} is not ${certText[certType]}`
|
||
});
|
||
return res.redirect('back');
|
||
},
|
||
next
|
||
);
|
||
}
|
||
|
||
function toggleLockdownMode(req, res, next) {
|
||
const { user } = req;
|
||
user.update$({ isLocked: !user.isLocked })
|
||
.subscribe(
|
||
() => {
|
||
req.flash('info', {
|
||
msg: 'We\'ve successfully updated your Privacy preferences.'
|
||
});
|
||
return res.redirect('/settings');
|
||
},
|
||
next
|
||
);
|
||
}
|
||
|
||
function toggleReceivesAnnouncementEmails(req, res, next) {
|
||
const { user } = req;
|
||
return user.update$({ sendMonthlyEmail: !user.sendMonthlyEmail })
|
||
.subscribe(
|
||
() => {
|
||
req.flash('info', {
|
||
msg: 'We\'ve successfully updated your Email preferences.'
|
||
});
|
||
return res.redirect('/settings');
|
||
},
|
||
next
|
||
);
|
||
}
|
||
|
||
function toggleReceivesQuincyEmails(req, res, next) {
|
||
const { user } = req;
|
||
return user.update$({ sendQuincyEmail: !user.sendQuincyEmail })
|
||
.subscribe(
|
||
() => {
|
||
req.flash('info', {
|
||
msg: 'We\'ve successfully updated your Email preferences.'
|
||
});
|
||
return res.redirect('/settings');
|
||
},
|
||
next
|
||
);
|
||
}
|
||
|
||
function toggleReceivesNotificationEmails(req, res, next) {
|
||
const { user } = req;
|
||
return user.update$({ sendNotificationEmail: !user.sendNotificationEmail })
|
||
.subscribe(
|
||
() => {
|
||
req.flash('info', {
|
||
msg: 'We\'ve successfully updated your Email preferences.'
|
||
});
|
||
return res.redirect('/settings');
|
||
},
|
||
next
|
||
);
|
||
}
|
||
|
||
function postDeleteAccount(req, res, next) {
|
||
User.destroyById(req.user.id, function(err) {
|
||
if (err) { return next(err); }
|
||
req.logout();
|
||
req.flash('info', { msg: 'You\'ve successfully deleted your account.' });
|
||
return res.redirect('/');
|
||
});
|
||
}
|
||
|
||
function getReset(req, res) {
|
||
if (!req.accessToken) {
|
||
req.flash('errors', { msg: 'access token invalid' });
|
||
return res.render('account/forgot');
|
||
}
|
||
return res.render('account/reset', {
|
||
title: 'Reset your Password',
|
||
accessToken: req.accessToken.id
|
||
});
|
||
}
|
||
|
||
function postReset(req, res, next) {
|
||
const errors = req.validationErrors();
|
||
const { password } = req.body;
|
||
|
||
if (errors) {
|
||
req.flash('errors', errors);
|
||
return res.redirect('back');
|
||
}
|
||
|
||
return User.findById(req.accessToken.userId, function(err, user) {
|
||
if (err) { return next(err); }
|
||
return user.updateAttribute('password', password, function(err) {
|
||
if (err) { return next(err); }
|
||
|
||
debug('password reset processed successfully');
|
||
req.flash('info', { msg: 'You\'ve successfully reset your password.' });
|
||
return res.redirect('/');
|
||
});
|
||
});
|
||
}
|
||
|
||
function getForgot(req, res) {
|
||
if (req.isAuthenticated()) {
|
||
return res.redirect('/');
|
||
}
|
||
return res.render('account/forgot', {
|
||
title: 'Forgot Password'
|
||
});
|
||
}
|
||
|
||
function postForgot(req, res) {
|
||
req.validate('email', 'Email format is not valid').isEmail();
|
||
const errors = req.validationErrors();
|
||
const email = req.body.email.toLowerCase();
|
||
|
||
if (errors) {
|
||
req.flash('errors', errors);
|
||
return res.redirect('/forgot');
|
||
}
|
||
|
||
return User.resetPassword({
|
||
email: email
|
||
}, function(err) {
|
||
if (err) {
|
||
req.flash('errors', err.message);
|
||
return res.redirect('/forgot');
|
||
}
|
||
|
||
req.flash('info', {
|
||
msg: 'An e-mail has been sent to ' +
|
||
email +
|
||
' with further instructions.'
|
||
});
|
||
return res.render('account/forgot');
|
||
});
|
||
}
|
||
|
||
// function vote1(req, res, next) {
|
||
// if (req.user) {
|
||
// req.user.tshirtVote = 1;
|
||
// req.user.save(function(err) {
|
||
// if (err) { return next(err); }
|
||
//
|
||
// req.flash('success', { msg: 'Thanks for voting!' });
|
||
// return res.redirect('/map');
|
||
// });
|
||
// } else {
|
||
// req.flash('error', { msg: 'You must be signed in to vote.' });
|
||
// res.redirect('/map');
|
||
// }
|
||
// }
|
||
//
|
||
// function vote2(req, res, next) {
|
||
// if (req.user) {
|
||
// req.user.tshirtVote = 2;
|
||
// req.user.save(function(err) {
|
||
// if (err) { return next(err); }
|
||
//
|
||
// req.flash('success', { msg: 'Thanks for voting!' });
|
||
// return res.redirect('/map');
|
||
// });
|
||
// } else {
|
||
// req.flash('error', {msg: 'You must be signed in to vote.'});
|
||
// res.redirect('/map');
|
||
// }
|
||
// }
|
||
};
|